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earned patent term adjustment. See 37 CFR 1.704(b). 
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4) S Claim(s) 1-26 is/are pending in the application. 
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7) D Claim(s) is/are objected to. 

8) D Claim(s) are subject to restriction and/or election requirement. 
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DETAILED ACTION 

1 . This is in response to the amendment on 1 November 2004. 

2. Claims 1-26 are pending in the application. 

3. Claims 1-26 stand being rejected. 

Response to Arguments 

4. Regarding claims 10-21 and 24-26, the applicant's arguments filed 1 November 2004 have 
been fully considered but they are not persuasive. 

On page 14, the applicant argues that Dulude does not teach forwarding the certificate to 
the server. The applicant argues that Dulude teaches storing the certificate in a biometric 
database or smart card memory 66 located in the receiving section 42. 

The examiner respectfully disagrees. Dulude does teach forwarding the certificate to the 
server. The certificate is sent to the biometric certificate extractor. The certificate is not sent to 
the biometric database or smart card memory. The biometric database and smart card memory 
are separate from the biometric certificate extractor. 

On page 15, the applicant argues that Jakobsson does not teach a crypto-proxy interface 
where requests for cryptographic functions are received 

The examiner respectfully disagrees. Jakobsson teaches receiving request for "proxy 
encryption". 

On page 16, the applicant argues that Jakobsson does not disclose that there is a request 
for cryptographic functions from the secondary recipient. The applicant argues that the requisite 
motivation to combine Dulude and Jakobsson is lacking. 
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The examiner respectfully disagrees. Jakobsson teaches receiving request for "proxy 
encryption". In response to applicant's argument that there is no suggestion to combine the 
references, the examiner recognizes that obviousness can only be established by combining or 
modifying the teachings of the prior art to produce the claimed invention where there is some 
teaching, suggestion, or motivation to do so found either in the references themselves or in the 
knowledge generally available to one of ordinary skill in the art. See In re Fine, 837 F.2d 1071, 
5 USPQ2d 1596 (Fed. Cir. 1988)and In re Jones, 958 F.2d 347, 21 USPQ2d 1941 (Fed. Cir. 
1992). In this case, it is efficient, allows tight control over actions (by the use of quorum 
cryptography), does not require any pre-computation phase to set up shared keys, and has a trust 
model appropriate for a variety of settings. 

Claim Rejections - 35 USC §102 

The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the 
basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public use or on 
sale in this country, more than one year prior to the date of application for patent in the United States. 

(e) the invention was described in a patent granted on an application for patent by another filed in the United 
States before the invention thereof by the applicant for patent, or on an international application by another who 
has fulfilled the requirements of paragraphs (1), (2), and (4) of section 371(c) of this title before the invention 
thereof by the applicant for patent. 

The changes made to 35 U.S.C. 102(e) by the American Inventors Protection Act of 1999 
(AIP A) and the Intellectual Property and High Technology Technical Amendments Act of 2002 
do not apply when the reference is a U.S. patent resulting directly or indirectly from an 
international application filed before November 29, 2000. Therefore, the prior art date of the 
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reference is determined under 35 U.S. C. 102(e) prior to the amendment by the AIPA (pre-AEPA 
35U.S.C. 102(e)). 

5. Claims 10-12 and 24-26 are rejected under 35 U.S.C. 102(e) as being anticipated by 
Dulude et al U.S. Patent No. 6,310,966 Bl. 

As to claim 10, Dulude et al discloses receiving a request for a certificate from the server. 
Dulude et al discloses forwarding the request to a biometric certification server (BCS). Dulude 
et al discloses receiving a biometric identification from the client and forwarding the biometric 
identification to the BCS. Dulude et al discloses that if the biometric identification matches a 
registered user on the BCS, receiving a certificate including a public key of the client certified by 
the BCS. Dulude et al discloses forwarding the certificate to the server, thereby identifying the 
client to the server [column 6, lines 50-65]. 

As to claim 11, Dulude et al discloses detecting an access to a certification database by 
the server, as discussed above. Dulude et al discloses inserting a temporary certification from 
the BCS into the certification database, as discussed above. Dulude et al discloses generating a 
true certificate if the server chooses the temporary certification, as discussed above. 

As to claim 12, Dulude et al discloses that the BCS generates a disposable public/private 
key pair in response to the request. Dulude et al discloses that the BCS certifies the disposable 
public key of the user [column 7, lines 26-44]. 

As to claim 24, Dulude et al discloses a crypto-API (application program interface) for 
receiving cryptographic function requests. Dulude et al discloses a cryptographic service 
provider for establishing a secure connection to a remote crypto-server. Dulude et al discloses 
having the crypto-server perform the cryptographic function. Dulude et al discloses a sensor for 
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receiving biometric data from a user. Dulude et al discloses that the biometric data sent to the 
crypto-server to authenticate the user. Dulude et al discloses that the remote crypto-server 
comprises: a crypto-proxy interface for receiving a request for the cryptographic function from 
the client on the secure connection; an authentication engine for authenticating the user based on 
the biometric data; a cryptographic engine for performing the cryptographic functions; and the 
crypto-proxy interface for returning data to the client, after the cryptographic functions are 
performed [column 5 line 50 to column 7 line 25]. 

As to claim 25, Dulude et al discloses the cryptographic service is authenticating the user 
to another server [column 5 line 50 to column 7 line 25]. 

As to claim 26, Dulude et al discloses that the cryptographic service is signing or 
encrypting data [column 5, lines 63-67]. 

Claim Rejections - 35 USC §103 

The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

6. Claims 1-4, 6-9, 22 and 23 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Dulude et al U.S. Patent No. 6,310,966 Bl in view of Ganesan U.S. Patent No. 
5,535,276. 

As to claim 1, Dulude et al discloses a client requesting a cryptographic service. Dulude 
et al discloses establishing a secure connection between the client and a biometric certification 
server (BCS). Dulude discloses receiving biometric data from a user. Dulude et al discloses that 
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the BCS performs the cryptographic service if the user is authenticated based on the biometric 
authentication [column 5 line 50 to column 7 line 25]. 

Dulude et al does not teach generating a disposable public key/private key pair. 

Ganesan teaches generating a disposable public key/private key pair [column 8, lines 19- 

28]. 

Therefore, it would have been obvious to a person having ordinary skill in the art at the 
time the invention was made to have modified Dulude et al so that the public/private key pair 
would have been replaced by a disposable public key/private key pair. 

It would have been obvious to a person having ordinary skill in the art at the time the 
invention was made to have modified Dulude et al by the teaching of Ganesan, as described 
above, because it ensures that the key is not intercepted by a third party, by disposing of the key 
after its use [column 8, lines 19-28]. 

As to claim 2, Dulude et al teaches that the cryptographic service is authenticating the 
user to another server [column 5 line 50 to column 7 line 25]. 

As to claim 3, Dulude et al teaches certifying the public key. Dulude et al teaches 
forwarding the certificate to the other server [column 5 line 50 to column 7 line 25]. 

As to claim 4, Dulude et al teaches that the client receives data from the other server for 
signing with the user's private key. Dulude et al teaches forwarding the data to the BCS. Dulude 
et al teaches that the BCS signing the data with the user's temporary private key [column 6, lines 
13-17]. 

As to claim 6, Dulude et al teaches detecting an access to a certification database of the 
client by another server. Dulude et al teaches inserting a temporary certification from the BCS 
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into the certification database of the client. Dulude et*al teaches generating a true certificate if 
the other server chooses the temporary certification [column 5, lines 33-62]. 

As to claim 7, Dulude et al teaches that the cryptographic service is signing or encrypting 
data [column 5, lines 63-67]. 

As to claim 8, Dulude et al teaches that retrieving a private key/public key pair for the 
user. Dulude et al teaches performing the cryptographic service with the private or the public 
key [column 6, lines 1-12]. 

As to claim 9, Dulude et al teaches detecting an access to a certificate database of the 
client, as discussed above. Dulude et al teaches detecting the user attempting to perform a 
cryptographic activity [column 6, lines 28-57]. 

As to claim 22, Dulude et al discloses a crypto-API (application program interface) for 
receiving cryptographic function requests. Dulude et al discloses a cryptographic service 
provider for establishing a secure connection to a remote crypto-server. Dulude et al discloses 
having the crypto-server perform the cryptographic function. Dulude et al discloses a sensor for 
receiving biometric data from a user. Dulude et al discloses that the biometric data is sent to the 
crypto-server to authenticate the user and that the remote crypto-server is to perform the 
requested cryptographic function when the user is successfully authenticated using the biometric 
data [column 5 line 50 to column 7 line 25]. 

Dulude et al does not teach generating a disposable public key/private key pair. 
* Ganesan teaches generating a disposable public key/private key pair [column 8, lines 19- 

28]. 
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Therefore, it would have been obvious to a person having ordinary skill in the art at the 
time the invention was made to have modified Dulude et al so that the public/private key pair 
would have been replaced by a disposable public key/private key pair. 

It would have been obvious to a person having ordinary skill in the art at the time the 
invention was made to have modified Dulude et al by the teaching of Ganesan, as described 
above, because it ensures that the key is not intercepted by a third party, by disposing of the key 
after its use [column 8, lines 19-28]. 

As to claim 23, Dulude et al discloses a crypto- API (application program interface) for 
receiving cryptographic function requests. Dulude et al discloses a cryptographic service 
provider for establishing a secure connection to a remote crypto-server. Dulude et al discloses 
having the crypto-server perform the cryptographic function. Dulude et al discloses a sensor for 
receiving biometric data from a user. Dulude et al discloses that the biometric data sent to the 
crypto-server to authenticate the user. Dulude et al discloses that the remote crypto-server 
comprises: a crypto-proxy interface for receiving a request for the cryptographic function from 
the client on the secure connection; an authentication engine for authenticating the user based on 
the biometric data; a cryptographic engine for performing the cryptographic functions; and the 
crypto-proxy interface for returning data to the client, after the cryptographic functions are 
performed [column 5 line 50 to column 7 line 25]. 

Dulude et al does not teach generating a disposable public key/private key pair. 

Ganesan teaches generating a disposable public key/private key pair [column 8, lines 19- 

28]. 
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Therefore, it would have been obvious to a person having ordinary skill in the art at the 
time the invention was made to have modified Dulude et al so that the public/private key pair 
would have been replaced by a disposable public key/private key pair. 

It would have been obvious to a person having ordinary skill in the art at the time the 
invention was made to have modified Dulude et al by the teaching of Ganesan, as described 
above, because it ensures that the key is not intercepted by a third party, by disposing of the key 
after its use [column 8, lines 19-28]. 

7. Claim 5 is rejected under 35 U.S.C. 103(a) as being unpatentable over Dulude et al U.S. 
Patent No. 6,310,966 Bl and Ganesan U.S. Patent No. 5,535,276 as applied to claim 1 
above, and further in view of Brickell et al U.S. Patent No. 6,310,966 Bl. 

As to claim 5, the Dulude-Ganesan combination does not teach that the client generates a 
session key for use with the other server. The Dulude-Ganesan combination does not teach 
encrypting the session key with a public key of the other server. The Dulude-Ganesan 
combination does not teach that the client closes the secure connection between the client and the 
BCS once the session is established between the client and the other server. 

Brickell et al teaches that the client generates a session key for use with the other server. 
Brickell et al teaches encrypting the session key with a public key of the other server [column 8, 
lines 31-47]. Brickell et al teaches that the client closes the secure connection between the client 
and the BCS once the session is established between the client and the other server [column 8, 
lines 31-47]. 

Therefore, it would have been obvious to a person having ordinary skill in the art at the 
time the invention was made to have modified the Dulude-Ganesan combination so that the 
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client generated a session key for use with the other server. The session key would have been 
encrypted with the public key of the other server. The client would have closed the secure 
connection between the client and the BCS once the session was established between the client 
and the other server 

It would have been obvious to a person having ordinary skill in the art at the time the 
invention was made to have modified the Dulude-Ganesan combination by the teaching of 
Brickell et al because the examiner asserts that this prevents a third party from intercepting the 
session key. 

8, Claims 13-21 are rejected under 35 U.S.C. 103(a) as being unpatentable over Dulude et 
al U.S. Patent No. 6,310,966 Bl in view of Jakobsson U.S. Patent No. 6,587,946 Bl. 

As to claim 13, Dulude et al discloses an authentication engine for authenticating the user 
based on biometric data [column 8, lines 5-50]. Dulude et al discloses a cryptographic engine for 
performing the cryptographic functions [column 8, lines 5-50]. 

Dulude et al does not teach a crypto-proxy interface for receiving a request for a 
cryptographic function from a client on a secure connection. Dulude et al does not teach that the 
crypto-proxy interface returns data to the client, after the cryptographic functions are performed. 

Jakobsson teaches a crypto-proxy interface for receiving a request for a cryptographic 
function from a client on a secure connection [column 5, lines 48-64]. Jakobsson teaches that the 
crypto-proxy interface returns data to the client, after the cryptographic functions are performed 
[column 6, lines 3-39]. 

Therefore, it would have been obvious to a person having ordinary skill in the art at the 
time the invention was made to have modified Dulude et al so that there would have been a 
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crypto-proxy interface for receiving a request for a cryptographic function from a client on a 
secure connection. The crypto-proxy interface would have returned the data to the client, after 
the cryptographic functions was performed. 

It would have been obvious to a person having ordinary skill in the art at the time the 
invention was made to have modified Dulude et al by the teaching of Jakobsson because it is 
efficient, allows tight control over actions (by the use of quorum cryptography), does not 
require any pre-computation phase to set up shared keys, and has a trust model appropriate for a 
variety of settings [column 3, lines 50-58]. 

As to claim 14, Dulude et al teaches that a database includes user credentials. Dulude et 
al teaches that the authentication engine retrieving user biometric template from the database and 
comparing the biometric template to the biometric data received from the user [column 5 line 50 
to column 7 line 25]. 

As to claim 15, Dulude et al teaches a dynamic key generation engine for generating a 
temporary public key/private key pair, the key pair used for establishing a session between the 
client and another server, as discussed above. 

As to claim 16, Dulude et al teaches the cryptographic engine generating a certificate 
including the temporary public key, certified by the cryptoserver's private key [column 5 line 50 
to column 7 line 25]. 

As to claim 17, Dulude et al teaches that the dynamic key generation engine destroying 
the temporary key pair after the session between the client and the other server is successfully 
established [column 7, lines 26-44]. 



Application/Control Number: 09/538,926 Page 12 

Art Unit: 2131 

As to claim 18, Dulude et al suggests a user self-registration interface permitting a user to 
choose a handle and register a biometric template [column 5 line 50 to column 7 line 25], 

As to claim 19, Dulude et al teaches a registration engine for receiving biometric data 
from the user during a registration process. Dulude teaches extracting the biometric template for 
the user. Dulude et al teaches a user credential database for storing the handle and the biometric 
template of the user [column 5, lines 16-49]. 

As to claim 20, Dulude et al teaches that the registration engine generates a persistent 
private key/public key pair. Dulude et al teaches a database for storing the persistent private 
key/public key pair [column 5, lines 16-49]. 

As to claim 21, Dulude et al teaches a database for storing a persistent private key/public 
key pair. Dulude et al teaches that the cryptographic engine uses the persistent private key or 
public key when appropriate to perform the cryptographic functions, as discussed above. 

Conclusion 

9. Applicant's amendment necessitated the new ground(s) of rejection presented in this 
Office action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP § 706.07(a). 
Applicant is reminded of the extension of time policy as set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within TWO 
MONTHS of the mailing date of this final action and the advisory action is not mailed until after 
the end of the THREE-MONTH shortened statutory period, then the shortened statutory period 
will expire on the date the advisory action is mailed, and any extension fee pursuant to 37 
CFR 1.136(a) will be calculated from the mailing date of the advisory action. In no event, 
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however, will the statutory period for reply expire later than SIX MONTHS from the date of this 
final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Aravind K Moorthy whose telephone number is 571-272-3793. 
The examiner can normally be reached on Monday-Friday, 8:00-5:30. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz R Sheikh can be reached on 571-272-3795. The fax phone number for the 
organization where this application or proceeding is assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 
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